1
22
23 package com.liferay.portal.servlet.filters.sso.ntlm;
24
25 import com.liferay.portal.kernel.log.Log;
26 import com.liferay.portal.kernel.log.LogFactoryUtil;
27 import com.liferay.portal.kernel.servlet.BrowserSnifferUtil;
28 import com.liferay.portal.kernel.servlet.HttpHeaders;
29 import com.liferay.portal.kernel.servlet.HttpMethods;
30 import com.liferay.portal.kernel.util.GetterUtil;
31 import com.liferay.portal.security.ldap.PortalLDAPUtil;
32 import com.liferay.portal.servlet.filters.BasePortalFilter;
33 import com.liferay.portal.util.PortalInstances;
34
35 import javax.servlet.FilterChain;
36 import javax.servlet.http.HttpServletRequest;
37 import javax.servlet.http.HttpServletResponse;
38
39 import jcifs.ntlmssp.Type1Message;
40 import jcifs.ntlmssp.Type2Message;
41
42 import jcifs.util.Base64;
43
44
49 public class NtlmPostFilter extends BasePortalFilter {
50
51 protected Log getLog() {
52 return _log;
53 }
54
55 protected void processFilter(
56 HttpServletRequest request, HttpServletResponse response,
57 FilterChain filterChain)
58 throws Exception {
59
60 long companyId = PortalInstances.getCompanyId(request);
61
62 if (PortalLDAPUtil.isNtlmEnabled(companyId) &&
63 BrowserSnifferUtil.isIe(request) &&
64 request.getMethod().equals(HttpMethods.POST)) {
65
66 String authorization = GetterUtil.getString(
67 request.getHeader(HttpHeaders.AUTHORIZATION));
68
69 if (authorization.startsWith("NTLM ")) {
70 byte[] src = Base64.decode(authorization.substring(5));
71
72 if (src[8] == 1) {
73 Type1Message type1 = new Type1Message(src);
74 Type2Message type2 = new Type2Message(
75 type1, new byte[8], null);
76
77 authorization = Base64.encode(type2.toByteArray());
78
79 response.setHeader(
80 HttpHeaders.WWW_AUTHENTICATE, "NTLM " + authorization);
81 response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
82 response.setContentLength(0);
83
84 response.flushBuffer();
85
86 return;
87 }
88 }
89 }
90
91 processFilter(NtlmPostFilter.class, request, response, filterChain);
92 }
93
94 private static Log _log = LogFactoryUtil.getLog(NtlmPostFilter.class);
95
96 }